Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/ad0f1a-6b94-4e0d-8a4a-d2fd9ffc31bf/1/kvHtuPWFGNTfZEGfHG3sznekKCM.roa
File: kvHtuPWFGNTfZEGfHG3sznekKCM.roa (raw, json)
Hash identifier: V85QMY3ksi/t/O4iBYVWnwUV96zcwQ9oGShEKTQkJfM=
Subject key identifier: 92:F1:ED:B8:F5:85:18:D4:DF:64:41:9F:1C:6D:EC:CE:77:A4:28:23
Certificate issuer: /CN=f2382375966948e21688e8ba1383a4a309e0562f
Certificate serial: 018571DE80D9FCA89D55041BAFF82D647697
Authority key identifier: F2:38:23:75:96:69:48:E2:16:88:E8:BA:13:83:A4:A3:09:E0:56:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8jgjdZZpSOIWiOi6E4OkowngVi8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/ad0f1a-6b94-4e0d-8a4a-d2fd9ffc31bf/1/kvHtuPWFGNTfZEGfHG3sznekKCM.roa
Signing time: Mon 02 Jan 2023 09:44:45 +0000
ROA not before: Mon 02 Jan 2023 09:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206261
IP address blocks: 185.190.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:80:d9:fc:a8:9d:55:04:1b:af:f8:2d:64:76:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2382375966948e21688e8ba1383a4a309e0562f
Validity
Not Before: Jan 2 09:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92f1edb8f58518d4df64419f1c6decce77a42823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:d2:36:93:a9:4c:53:a7:de:b8:2a:06:57:37:
33:d7:77:7d:5b:e7:28:c3:be:ee:0c:09:8c:9f:cd:
b7:e8:44:71:60:0f:3b:6b:9b:4d:d8:4f:e3:20:c2:
58:14:c3:81:a1:3a:d3:0f:d0:a8:ea:50:67:cc:e6:
65:5d:b9:be:b0:cc:5e:ae:cc:24:4e:bb:6a:8e:2b:
e7:58:f1:ec:13:04:96:da:5c:3b:d4:0c:6a:46:10:
9f:1d:7e:49:f8:70:e3:49:c5:4f:98:76:5a:5c:c1:
fe:06:1f:de:d2:e4:48:8d:ec:eb:60:60:bf:72:21:
90:d5:1c:43:2e:01:44:e4:53:d9:bf:18:cf:c1:e3:
a7:a3:fa:63:59:ff:e2:d9:f7:06:af:d1:d9:a6:8a:
87:d4:80:f8:b8:cd:61:37:84:bc:14:95:cb:34:61:
8b:4d:8b:fd:f6:7f:33:8b:55:be:fe:e6:d8:5e:0a:
6c:f8:73:bf:55:a4:b7:6f:ef:d2:73:26:39:92:49:
9f:4f:ce:ba:ef:ae:c3:b7:a3:8d:d0:62:03:4b:12:
0f:5d:12:ff:1c:bb:fa:d9:85:e2:ec:4b:7e:68:bf:
0b:f1:d2:9c:4d:58:ef:67:61:f0:1b:79:e3:91:19:
98:e7:f2:30:0a:53:77:d7:a4:b4:7e:b5:26:02:f4:
94:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:F1:ED:B8:F5:85:18:D4:DF:64:41:9F:1C:6D:EC:CE:77:A4:28:23
X509v3 Authority Key Identifier:
keyid:F2:38:23:75:96:69:48:E2:16:88:E8:BA:13:83:A4:A3:09:E0:56:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8jgjdZZpSOIWiOi6E4OkowngVi8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ad0f1a-6b94-4e0d-8a4a-d2fd9ffc31bf/1/kvHtuPWFGNTfZEGfHG3sznekKCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ad0f1a-6b94-4e0d-8a4a-d2fd9ffc31bf/1/8jgjdZZpSOIWiOi6E4OkowngVi8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.244.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:1c:85:73:e3:0d:31:bc:24:2a:e3:71:ce:64:15:dd:42:ea:
3b:63:26:9e:41:d7:88:f8:dc:ec:6a:0e:1a:53:67:92:f7:d6:
45:a0:b3:23:5e:ef:f2:69:00:53:61:0d:75:c3:69:0e:6e:91:
7c:21:ee:fa:5b:b4:7d:cf:09:8e:c6:2f:3a:6e:62:74:e3:39:
f1:29:4b:ed:9b:83:fd:97:d2:bc:23:ba:d4:53:2b:7c:36:f4:
e3:01:ad:f5:6e:54:99:bf:34:c4:33:04:23:06:e3:65:fc:7f:
da:d1:d7:96:f0:dd:24:74:91:ee:bb:35:8a:e5:f8:3f:63:65:
4f:e3:15:97:14:65:30:25:8b:b0:bf:5c:2d:71:50:3d:0b:6b:
98:4b:90:fd:33:e9:f4:35:ba:fc:3d:56:72:5a:a2:76:01:69:
4f:93:34:75:53:dc:f9:12:54:a9:0b:92:1d:43:2b:7c:85:d3:
d9:70:fd:c0:4e:7d:41:43:b7:72:84:85:eb:35:29:1e:7f:98:
0e:1a:47:f4:e7:d2:5f:b6:7d:9d:ae:1b:11:70:90:cd:ac:5b:
9d:68:5f:f0:1b:be:ea:e8:52:80:a5:88:83:24:03:67:cb:7b:
ea:8e:63:fe:db:d4:af:b1:3c:71:5e:ab:7a:28:7f:1a:29:c9:
0b:46:57:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:07:53 2025 by rpki-client